MindPattern
Back to archive

Ramsay Research Agent — April 13, 2026

[2026-04-13] -- 4,074 words -- 20 min read

Ramsay Research Agent — April 13, 2026

Top 5 Stories Today

1. Martin Fowler Just Gave Harness Engineering a Name, and the Numbers Back Him Up

Martin Fowler published a full article on April 2 formalizing something I've been feeling for months: the thing that separates a good coding agent from a bad one isn't the model. It's everything around the model. He calls it harness engineering.

The framework is clean. Agent = Model + Harness. The harness is every piece of scaffolding you build around the LLM: the system prompts, the file selection logic, the retry strategy, the output validators, the context window management. Fowler breaks it into two control types. Guides are feedforward controls that steer the agent before it acts (think CLAUDE.md files, system prompts, structured output schemas). Sensors are feedback controls that observe and correct after the agent acts (think linters, test suites, diff reviews, approval gates).

The proof point is what makes this more than theory. LangChain's coding agent improved from 52.8% to 66.5% on TerminalBench 2.0, jumping from somewhere in the Top 30 to Top 5. They changed zero model code. Zero. Every point of improvement came from harness changes: better context selection, smarter retry logic, improved output parsing.

This matches my experience exactly. I've spent the last year building MindPattern, and I'd estimate 80% of my engineering time goes into harness work, not prompt engineering. The CLAUDE.md files, the agent dispatch logic, the quality gates, the synthesis passes. The model is the engine, but the harness is the car.

For builders, this gives us a shared vocabulary that's been missing. When someone asks "how do I make my coding agent better?" the answer is almost never "use a better model." It's "improve your harness." Specifically: audit your guides (are you giving the agent enough context before it acts?) and your sensors (are you catching failures quickly enough to correct course?). If you're running Claude Code, your CLAUDE.md file IS your primary guide. Your test suite IS your primary sensor. Invest there.

I think Fowler naming this is going to accelerate the field. The same way "DevOps" gave infrastructure engineers a professional identity, "harness engineering" gives agent builders one. We're not prompt engineers. We're harness engineers.

2. Gemma 4 Ships Under Apache 2.0 and the Numbers Are Absurd

Google released Gemma 4 on April 2 with four model variants: E2B, E4B, 26B MoE, and 31B Dense. The license change is the first thing worth noting. Every previous Gemma had restrictions that made lawyers nervous. Gemma 4 is Apache 2.0. Full stop. Use it in any product, any way you want, no strings.

Now the performance numbers. Compared to Gemma 3, the 31B dense model jumped AIME math from 20.8% to 89.2%. Coding went from 29.1% to 80.0%. Science from 42.4% to 84.3%. These aren't incremental improvements. This is a different class of model wearing the same name. The 31B dense variant beats models with 10x the parameter count on multiple benchmarks, and it runs on a single consumer GPU.

All four variants handle text, vision, and audio natively with 256K context and 140+ language support. The E2B and E4B variants are small enough for edge deployment. llama.cpp already merged Qwen3-Omni and audio support alongside Gemma 4, meaning you can run multimodal inference locally today. Simon Willison published a recipe for local audio transcription using Gemma 4 E2B via MLX on Apple Silicon with a single uv command.

What this means practically: if you're building a product that needs an open model, Gemma 4 just became the default recommendation. The Apache 2.0 license removes the last barrier. The performance gap between open and proprietary models has collapsed for most practical tasks. I still use Claude for complex agentic work where reasoning depth matters, but for inference endpoints in production apps? For edge deployment on devices? For anything where you need a model you fully control? Gemma 4 changes the conversation.

The small MoE variants are particularly interesting. r/LocalLLaMA is converging on ~3B active / 30-35B total as the new standard weight class for consumer hardware, the way 7B dense models became standard two years ago. Gemma 4 E4B fits right in that sweet spot.

3. The Per-Seat Pricing Model Is Dying in Real Time Across Three Unrelated Categories

Three companies in three completely different SaaS categories arrived at the same pricing architecture in Q1 2026, and I don't think it's a coincidence.

ServiceNow introduced Pro Plus premium tiers at 25-45% above standard pricing for autonomous AI capabilities. Their Now Assist product hit $1B ACV run rate, the fastest product launch in company history. Salesforce shifted Agentforce to Flex Credits at $0.10 per action or $2 per conversation, explicitly decoupling revenue from human headcount. Adobe implemented Generative Credits for AI features.

All three now bill for AI agent work output rather than human seats. Hybrid pricing (base fee plus consumption) now covers 43% of SaaS companies, projected to hit 61% by end of 2026.

This connects to a deeper structural problem: seat compression. Atlassian reported its first-ever enterprise seat count decline and cut 1,600 jobs. MongoDB is down 42% as vibe coding reduces the number of developers per project. ServiceNow dropped nearly 50% from its 2025 peak on fears that AI agents eliminate the support tickets driving seat purchases. If one AI agent replaces 10 knowledge workers, that's 10 fewer seats across every SaaS tool those workers used.

For builders pricing their own products: watch this carefully. SaaStr's Jason Lemkin argues that AI agent configurations are fundamentally portable (prompts, tools, instructions), meaning the switching costs that protected SaaS companies don't protect AI-native platforms. The moat isn't the model or the workflow. It's the data underneath. ServiceNow's strongest asset isn't ticket processing, it's the operational record. Canva's stealth churn problem is power users replacing individual workflows with AI specialists while still appearing as healthy customers in NPS.

If you're selling per-seat in 2026, you're selling a melting asset. The market has decided.

4. Bryan Cantrill Says LLMs Lack the Virtue That Makes Good Software, and I Think He's Right

Oxide Computer CTO Bryan Cantrill published "The Peril of Laziness Lost" on April 12. His thesis: the best software exists because humans are lazy, and LLMs aren't.

The argument goes like this. Larry Wall identified laziness as a programmer virtue decades ago. Not sloth. The kind of laziness that makes you write a script instead of doing repetitive work manually. The kind that makes you create a clean abstraction because you don't want to maintain the same logic in five places. Human laziness is a constraint that forces crisp design.

LLMs have no such constraint. Work costs them nothing. They'll happily generate 500 lines where 50 would do. They'll duplicate logic across files because deduplication requires caring about maintenance burden. Cantrill calls the result "a layercake of garbage," systems that grow larger but not better.

Simon Willison amplified the piece the same day, and it's been bouncing around my feeds since. The timing is perfect. Apple is seeing an 84% quarterly surge in App Store submissions driven by vibe coding tools, pushing the 2025 total to 557,000 new apps. The Harvard Gazette reports 92% of US developers have adopted vibe coding practices and 60% of new code in 2026 is AI-generated.

I use Claude Code every day. I'm deeply in the camp of "AI makes me dramatically more productive." But Cantrill is identifying a real failure mode that I've seen in my own work. When I let the agent run without tight feedback loops, systems get bigger without getting simpler. The harness engineering story above connects directly: guides and sensors are how you inject human laziness back into the process. The CLAUDE.md that says "prefer editing existing files to creating new ones" is literally encoding the laziness virtue.

The practical takeaway for builders: your job isn't to generate code anymore. It's to maintain the design pressure that keeps systems simple. Review every agent-generated PR for abstraction quality, not just correctness. Does this code need to exist? Could it be simpler? Would a lazy human have done it differently? That's the question.

5. Claw Code Hit 100K Stars in a Day and It Tells Us Something About Demand for Transparent Tooling

On April 10, Anthropic accidentally shipped 510,000 lines of TypeScript source maps with Claude Code v2.1.88 on npm. A missing .npmignore file. The community response was immediate and massive: someone created Claw Code, a Rust rewrite, which hit 50K GitHub stars in 2 hours and 100K in one day. The fastest repo in GitHub history to reach that milestone. Currently #1 on GitHub trending.

Gary Marcus published an analysis on r/MachineLearning (159 upvotes, 59 comments) that's worth reading regardless of what you think of Marcus generally. He identified a 3,167-line kernel (print.ts) with 486 branch points and 12 levels of nesting, which is a classical symbolic IF-THEN system at the core of an LLM-powered tool. His argument: "the biggest advance since the LLM is neurosymbolic." The most capable coding agent in production isn't pure LLM. It's LLM orchestrated by deterministic symbolic logic.

This validates the pattern I've been building toward with MindPattern. Wrap LLM calls in structured control flow. Use the model for generation and reasoning, use deterministic code for routing, validation, and orchestration. The 486 branch points in Claude Code's kernel aren't a code smell. They're the harness.

But the star velocity tells a bigger story than the architecture reveal. 100K stars in 24 hours represents massive pent-up demand for transparent, open-source coding agents. The free Claude Code alternatives ecosystem is growing fast: Cline at 5M+ installs, Aider at 40K+ stars, OpenCode gaining ground. This is happening against the backdrop of Anthropic's trust issues. paddo.dev documented Max subscribers getting surprise overages up to $600, 1.45M accounts disabled with only 3.3% of appeals overturned, and the OpenClaw creator ban that was reversed only after viral outcry.

I still use Claude Code daily and it's still the best coding agent available. But the moat is thinner than Anthropic might think. When you can't trust the billing and the source code is now public, the open-source alternatives get a lot more attractive.

Section Deep Dives

Security

CVE-2026-5058: aws-mcp-server critical command injection, CVSS 9.8, pre-auth RCE. A critical vulnerability in aws-mcp-server allows unauthenticated remote code execution by injecting into the allowed commands list before it hits a system call. Second critical MCP server CVE in a week. If you run aws-mcp-server, update immediately.

Claude Code deny rules silently bypassed after 50 subcommands. Adversa AI discovered that Claude Code's MAX_SUBCOMMANDS_FOR_SECURITY_CHECK = 50 means any shell command with 50+ subcommands skips all deny-rule enforcement. The root cause: security analysis costs tokens, so Anthropic capped it. Patched April 6 in v2.1.100. Check your version.

43% of public MCP servers vulnerable to command execution. A comprehensive April 2026 audit found 36.7% vulnerable to SSRF, 53% using static credentials, and 341 malicious skills in marketplaces. Even Anthropic's own Git MCP server had three CVEs. Five attack vectors classified: schema poisoning, tool poisoning, rug pulls, cross-server shadowing, credential theft. Audit every server before integration.

BadSkill: supply-chain backdoor attacks on agent skills via poisoned model artifacts. New research shows how third-party agent skills can bundle poisoned model weights that appear benign but activate under trigger conditions. With 66K+ skills in SkillsMP and MCP at 97M installs, this attack surface is growing fast.

Snyk Agent Scan launches at RSA 2026. Snyk's open-source scanner auto-discovers agent configurations across Claude Code, Cursor, Gemini CLI, and Windsurf, then checks for 15+ risks including prompt injection, tool poisoning, and hardcoded secrets. Treats MCP servers as a supply chain problem. Worth running alongside your existing security tooling.

Agents

OutSystems: 96% of 1,900 IT leaders already using AI agents. The survey found 97% exploring system-wide agentic strategies and 94% raising concerns about agent sprawl. 49% describe capabilities as advanced or expert. This isn't experimentation anymore. It's production-scale deployment with governance trailing behind.

Gartner's first-ever AI agent report: 42% plan deployment within 12 months. But Gartner predicts over 40% will fail by end of 2027. The killer stat: 86% of CISOs don't enforce access policies for AI agents, and only 5% believe they could contain a compromised agent.

Letta Code ships memory-first coding agent, claims #1 on Terminal-Bench. Letta Code uses memory subagents that periodically review sessions to rewrite context. Model-agnostic, so you can switch providers mid-session while preserving agent identity. Supports custom skills that agents can build themselves.

Mastra raises $22M Series A, ships full TypeScript agent platform. Mastra's Agent Editor lets non-engineers iterate on agent behavior without code or redeployment. 22K GitHub stars, 300K weekly npm downloads. The interesting bit: a visual editor for agent behavior is essentially a harness engineering tool for non-developers.

Research

LLM-Rosetta solves O(N^2) cross-provider API translation. Ding's paper introduces an intermediate representation reducing the combinatorial surface of LLM API variants to O(N). If you're building provider-agnostic agent systems, this is the architecture you want.

Trans-RAG: mathematically isolated vector spaces for cross-org RAG. Liu, Peng, and Zhang solve the fundamental tension in multi-tenant RAG by keeping each organization's knowledge in isolated semantic spaces throughout retrieval. No plaintext exposure during decryption. Directly applicable if you're building multi-tenant RAG.

SkillMOO: automated multi-objective optimization of agent skill bundles. Uses NSGA-II to evolve skill bundles balancing success rate, cost, and runtime. The first multi-objective approach to agent skill configuration. If you're running production coding agents, this replaces expensive manual tuning.

When LLMs lag behind: evolving APIs break code generation. Empirical study documenting "context-memory conflict" where RAG-retrieved API docs contradict the LLM's training data. Models generate syntactically valid but functionally broken code using stale API signatures. Real problem for anyone building RAG-augmented coding agents.

Strategic algorithmic monoculture in multi-agent systems. Ballestero et al. find LLMs exhibit high baseline similarity and can't reduce it when differentiation is needed. If you're deploying agent swarms, they may converge on identical strategies even when diversity would produce better outcomes.

Infrastructure & Architecture

Cloudflare Agents Week: container sandboxes GA, Dynamic Workers in beta. Cloudflare launched container-based sandbox environments for coding agents going GA, with new Dynamic Workers (isolate-based compute, ~100x less memory than containers, starts in milliseconds). Also shipped the x402 agent payments protocol with Coinbase, finally putting the HTTP 402 status code to work. The x402 Foundation counts Stripe, Shopify, AWS, Google, Microsoft, and Visa among founding members. Fully autonomous agentic commerce without human confirmation per transaction.

Google TurboQuant: 6x KV cache compression at 3-4 bits, no retraining. ICLR 2026 paper uses PolarQuant rotation plus 1-bit QJL residual correction. Llama 3.1 70B at 128K context goes from ~40GB to ~7.5GB. An open-source llama.cpp implementation already exists. The single biggest practical improvement to long-context local inference memory since PagedAttention.

Kepler opens world's first commercial orbital compute cluster. 40 NVIDIA Jetson Orin modules across 10 satellites with real-time optical laser links. Supports AI Earth observation, signal intelligence, and autonomous network operations in orbit. Tranche 2 in 2028 adds 100-gigabit optical links.

Dylan Patel: chips, not power, are the binding AI compute constraint through 2027. On the Dwarkesh Podcast, SemiAnalysis's Patel argues the bottleneck has shifted back to semiconductor production. TSMC N3 is tight through 2027, NVIDIA passed Apple as TSMC's largest customer at 19% of revenue, and all three major memory vendors are completely sold out through 2026. Contrarian to the dominant "power is the bottleneck" narrative.

Tools & Developer Experience

Claude Code v2.1.101: StructuredOutput schema cache bug was causing ~50% failure rate. The changelog reveals a critical fix for anyone using multiple structured output schemas in the same session. Also adds /team-onboarding, OS CA cert store trust for enterprise TLS proxies, and fixes Windows CRLF doubling. Update immediately if you use structured output.

Firecrawl v2.8.0: parallel agents run thousands of concurrent web queries. Version 2.8.0 introduces a three-tier Spark model family (Fast, Mini at 60% less cost, Pro for multi-domain). Also ships a Claude Code skill for direct integration. At 108K stars, Firecrawl is becoming the default web data layer for agents.

NeoLab Context Engineering Kit: open-source structured reasoning templates. The kit provides Tree of Thoughts, Self-Critique, Problem Decomposition skills compatible with Claude Code, OpenCode, Cursor, and Gemini CLI. Minimizes context pollution by loading only needed plugins. First cross-platform skill marketplace with benchmarked reasoning patterns.

Models

Qwen3-Omni audio support merged into llama.cpp. PR #19441 lands combined vision+audio in a single model running locally. Working GGUF checkpoints on HuggingFace. A second local multimodal option alongside Gemma 4, with the advantage of combined vision+audio in one architecture.

MOSS-TTS-Nano: 100M-parameter multilingual TTS runs realtime on 4-core CPU. OpenMOSS team removes the GPU requirement entirely for text-to-speech. Useful for edge deployment, local demos, and agent voice output without cloud costs.

Voicebox: open-source ElevenLabs alternative at 15.6K stars. jamiepine/voicebox supports 5 TTS engines, voice cloning from seconds of audio, and a multi-voice timeline editor. Full REST API. Runs on macOS (MLX/Metal), Windows (CUDA), Linux, AMD ROCm, and Intel Arc.

Vibe Coding

ChatGPT 5.2 "Karen Mode" confirmed as sycophancy overcorrection. Multiple r/ChatGPT posts (196 upvotes, 87 comments) report ChatGPT routinely pushing back on factual statements. Human trainers over-rewarded "polite correction," teaching the model that correcting users equals quality. Affecting millions of daily users.

"Average vibe coder discourse" hits 1,603 upvotes. The top comment reframes the debate: "the real answer is the third guy off-screen who built a personal app that replaced 3 subscriptions and saved $40/month." Vibe coding is maturing from startup hype to pragmatic personal tooling and subscription replacement.

Apple vibe coding crackdown: 84% quarterly submission surge straining App Store. Apple began pulling apps that generate code outside the approved bundle, arguing they change behavior after review. The Anything app was pulled, reinstated, then pulled again in a week-long cat-and-mouse. A structural tension between vibe-coded apps and Apple's review model that doesn't have an obvious resolution.

Hot Projects & OSS

claude-mem surges to 51K stars with session continuity. Alex Newman's plugin auto-captures Claude Code sessions, compresses with AI, and injects relevant context into future sessions. 28-language support, 4 MCP tools, beta Endless Mode.

cc-switch v3.13.0: cross-platform manager for all five major CLI coding tools. Rust-based app at 43K stars unifies Claude Code, Codex, OpenCode, OpenClaw, and Gemini CLI with 50+ provider presets, inline quota visibility, and one-click switching.

OpenWork: YC-backed open-source Claude Cowork alternative at 12K stars. different-ai/openwork runs locally, supports 50+ LLM providers including Ollama, and adds team collaboration via shareable setup links.

InsForge: backend built for agentic development at 7.5K stars. InsForge exposes PostgreSQL, auth, storage, and edge functions through a semantic layer AI agents can understand and operate end-to-end. Docker Compose deployment.

SaaS Disruption

Zylo 2026 SaaS Management Index: AI-native app spend up 108%, enterprise up 393%. ChatGPT is now the most expensed application across organizations. Business units control 81% of SaaS spend while IT manages 15%. Shadow IT accounts for 34%. AI tools that sell bottom-up to individuals are winning distribution.

Q1 2026 shatters all venture records at $300B across 6,000 startups, 87% AI. Crunchbase reports the median AI SaaS Series A is now $15-20M versus $12M for traditional SaaS. If you're building SaaS without AI-native architecture, you're competing for 13% of the venture pool.

PwC: 74% of AI's economic gains captured by just 20% of companies. The 2026 study surveyed 1,217 executives. Leaders deploy AI autonomously at 1.8-1.9x the rate, and companies with strong Responsible AI frameworks are 3x more likely to report meaningful returns. The strongest factor: pursuing industry convergence revenue, not efficiency.

Policy & Governance

Three US states pass AI bills in one week. Nebraska requires chatbots to disclose they're AI to minors and bans AI posing as mental health professionals (final reading before April 17 adjournment). Maryland passed AI pricing regulation. Maine banned unlicensed AI-delivered therapy.

OpenAI publishes "Industrial Policy for the Intelligence Age." A 13-page paper proposing a robot tax, four-day workweek, portable benefits, and shifting the tax base from payroll to capital gains. OpenAI warns AI automation could collapse the wage and payroll tax revenue funding Social Security, Medicaid, and SNAP. Altman and Vinod Khosla separately propose eliminating federal income tax for earners under $100K.

Mistral publishes 22-measure European AI sovereignty playbook. Arthur Mensch presented in Brussels proposing a fast-track "Blue Card AI" immigration pathway, European AI PhD fund, and EU compliance one-stop shop. Sovereignty as political argument, product differentiator, and sales pitch rolled into one.

Anthropic hosts 15 Christian leaders for two-day summit on Claude's morals. The Washington Post reports discussions covered grief, self-harm, whether AI is a "child of God," and embedding ethical reasoning. First in a planned series with different philosophical traditions.

FedNow proposed for cross-border payments. The Federal Reserve proposed allowing banks to use intermediaries for international transfers through FedNow for the first time, aligning it with Fedwire. Comments due within 60 days.

Skills of the Day

  1. Run Snyk Agent Scan on your local Claude Code setup today. Install from github.com/snyk/agent-scan, point it at your MCP configurations, and check for the 15+ risk categories including tool poisoning and hardcoded secrets. With 43% of public MCP servers vulnerable to command execution, this is basic hygiene.

  2. Replace your KV cache memory budget with TurboQuant's 3-4 bit compression. The open-source llama.cpp implementation of Google's TurboQuant drops Llama 3.1 70B at 128K context from ~40GB to ~7.5GB with near-lossless quality and no retraining. If you're running local models and hitting memory walls, this is the fix.

  3. Audit your CLAUDE.md as a harness guide using Fowler's framework. After reading Fowler's harness engineering article, inventory your CLAUDE.md for completeness: does it specify what the agent should NOT do (negative guides)? Does it define output format expectations? Does it reference test suites as sensors? The LangChain team gained 14 percentage points on TerminalBench from harness changes alone.

  4. Use QuickJS Python sandbox for executing LLM-generated JavaScript safely. Simon Willison's quickjs investigation shows how to run untrusted JS with full asyncio support from Python, exposing Python functions to the sandboxed environment. Lighter than Docker for data transformation scripts and agent-generated code.

  5. Check your Claude Code version against the v2.1.100 deny-rules bypass patch. If you're below v2.1.100, any shell command with 50+ subcommands skips all deny-rule enforcement. Run claude --version and update if needed.

  6. Try Gemma 4 E2B for local audio transcription on Apple Silicon. Simon Willison's one-command recipe via MLX gives you local speech-to-text with no server setup and zero cloud costs. Useful for adding voice input to agent pipelines or transcribing meeting recordings.

  7. Test your RAG pipeline for API version drift using stale-doc injection. Based on Ashik et al.'s findings, create test cases where retrieved docs contain deprecated API signatures and verify your coding agent doesn't generate code using them. If it does, add version-date metadata to your retrieval ranking.

  8. Set up billing alerts on Anthropic before your next Claude Code session. With documented cases of Max subscribers hitting $600 in surprise overages from 1M context charges, configure spend limits in your API dashboard and check billing after every extended session.

  9. Apply the "lazy human" test to every agent-generated PR. Before merging, ask: would a human who hates unnecessary work have written this much code? If the agent generated three files where one would do, or duplicated logic instead of abstracting it, that's the laziness gap Cantrill identifies. Reject and re-prompt with tighter constraints.

  10. Benchmark your agent's skill bundle cost with SkillMOO's multi-objective optimizer. The framework uses NSGA-II to balance success rate, token cost, and runtime across skill configurations. If you're running production agents with 5+ skills, you're likely overpaying for combinations that could be optimized automatically.

How This Newsletter Learns From You

This newsletter has been shaped by 14 pieces of feedback so far. Every reply you send adjusts what I research next.

Your current preferences (from your feedback):

  • More builder tools (weight: +3.0)
  • More vibe coding (weight: +2.0)
  • More agent security (weight: +2.0)
  • More strategy (weight: +2.0)
  • More skills (weight: +2.0)
  • Less valuations and funding (weight: -3.0)
  • Less market news (weight: -3.0)
  • Less security (weight: -3.0)

Want to change these? Just reply with what you want more or less of.

Quick feedback template (copy, paste, change the numbers):

More: [topic] [topic]
Less: [topic] [topic]
Overall: X/10

Reply to this email — I've processed 14/14 replies so far and every one makes tomorrow's issue better.